{"vulnerability": "CVE-2026-5229", "sightings": [{"uuid": "1c4ee02c-ded2-4934-a6b6-0e67fbdb3add", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-5229", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mluxsxr7ya2y", "content": "CRITICAL: WordPress Form Notify plugin \u22641.1.10 allows full account takeover via OAuth authentication bypass. Disable or patch ASAP. Details: https://radar.offseq.com/threat/cve-2026-5229-cwe-287-improper-authentication-in-m-73809aa0 #OffSeq #WordPress #CVE20265229", "creation_timestamp": "2026-05-15T09:00:31.466027Z"}, {"uuid": "b99c98bf-1b9a-4ecf-b6ed-ee9643ea7fe4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5229", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mlv363rg662w", "content": "\ud83d\udd34 CVE-2026-5229 - Critical (9.8)\n\nThe Form Notify plugin for WordPress is vulnerable to Authentication Bypass in versions up to and...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-5229/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-15T10:00:26.703762Z"}, {"uuid": "d8a0c743-62df-4130-b995-de9d6a8d5f72", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5229", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mlvaaa44ml2k", "content": "CVE-2026-5229 - Receive Notifications After Form Submitting \u2013 Form Notify for Any Forms\nCVE ID : CVE-2026-5229\n \n Published : May 15, 2026, 9:16 a.m. | 50\u00a0minutes ago\n \n Description : The Form Notify plugin for WordPress is vulnerable to Authentication Bypass in versions up to...", "creation_timestamp": "2026-05-15T11:31:06.820132Z"}]}